$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft File: pcmHAk0KjqwJZAn9mewy7JBHC6M.mft (raw, json) Hash identifier: BbYfF2eowFn7W3V7ic1rz9N+/LCdyr70CBPcHs0eSFQ= Subject key identifier: 2B:41:C8:32:88:B4:D4:1C:F4:F8:FB:61:30:55:11:E5:F7:70:AC:B8 Authority key identifier: A5:C9:87:02:4D:0A:8E:AC:09:64:09:FD:99:EC:32:EC:90:47:0B:A3 Certificate issuer: /CN=A91E4B86/serialNumber=A5C987024D0A8EAC096409FD99EC32EC90470BA3 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft Manifest number: 25 Signing time: Mon 05 May 2025 06:38:47 +0000 Manifest this update: Mon 05 May 2025 06:38:46 +0000 Manifest next update: Mon 12 May 2025 06:38:46 +0000 Files and hashes: 1: pcmHAk0KjqwJZAn9mewy7JBHC6M.crl (hash: 34dVLTp91/e/MhyLR4KxWYFtWRgK0ImC0NmB3ZzEvHc=) 2: 4C51E1D4F7E511EF9A28D363C4F9AE02.roa (hash: EWVCVV5zCZB19LClSuWFTWXQU193NPHqHKJqFm4wMOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.crl rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 06:38:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B86, serialNumber=A5C987024D0A8EAC096409FD99EC32EC90470BA3 Validity Not Before: May 5 06:38:46 2025 GMT Not After : May 12 06:38:46 2025 GMT Subject: CN=68185cf6-d8fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b0:a7:42:18:56:0f:84:d9:dd:b5:47:4d:3e: e3:94:15:95:42:5a:93:a5:b5:b0:8e:7a:7a:4c:37: 62:53:c2:e1:8d:dc:ae:b7:30:4e:45:4d:e0:d6:31: 8a:12:d4:4c:6c:b6:65:4b:08:9a:a1:b2:3c:82:57: e8:e7:d8:68:d1:61:2b:ef:44:ab:1e:f7:46:2c:ba: 85:02:17:e5:83:ad:7b:98:23:9a:79:91:1f:be:a2: f4:64:5a:f1:9c:b6:85:00:4b:4e:9b:1b:5b:11:7f: e5:77:7b:ca:c2:0d:72:19:1e:c7:8e:1a:81:09:4c: 25:04:15:1f:84:03:03:a5:ff:14:3b:a2:30:25:5e: de:c8:50:4f:6c:79:ad:03:03:fa:5d:42:57:6c:c1: d3:86:94:1f:62:1d:5e:b5:00:15:8e:06:39:fb:56: e4:8d:f5:e7:ae:f7:87:88:1f:bb:fe:d5:24:3f:b6: 52:8b:b1:ce:c4:5d:68:aa:6f:96:72:ab:ad:9a:35: 1e:c6:e9:2d:7f:10:03:46:e3:88:74:9f:85:53:6c: 51:da:9d:66:04:80:25:89:3c:39:cc:12:a6:45:5b: e9:cd:00:c9:31:e9:d4:0b:19:50:8d:7b:ba:1c:bb: 7d:91:ec:0f:4e:79:00:3c:cc:36:ec:db:5f:eb:c0: 38:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:41:C8:32:88:B4:D4:1C:F4:F8:FB:61:30:55:11:E5:F7:70:AC:B8 X509v3 Authority Key Identifier: keyid:A5:C9:87:02:4D:0A:8E:AC:09:64:09:FD:99:EC:32:EC:90:47:0B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ce:d1:8f:c0:a6:85:e4:a2:fb:8d:2e:c8:3f:2d:56:af:c0: 21:a5:bf:6f:47:90:fd:29:c0:a5:38:69:e0:8f:75:50:c9:d2: 18:a8:9e:57:9a:41:01:b8:b3:1d:86:94:01:71:95:bd:f3:00: 34:55:2e:1f:b1:71:b7:f5:35:53:67:fc:fa:52:26:f3:2d:5d: 13:f8:39:b8:61:d6:02:96:54:47:cb:e2:cf:db:b8:f4:86:e5: 64:af:a0:a2:5e:5d:2e:d0:46:e6:8b:4b:fd:89:37:26:11:dd: d9:02:ec:d3:15:5d:bc:ee:49:4c:89:9a:48:f4:36:33:b9:10: ad:57:a9:c6:2c:b1:b3:19:77:10:ba:9b:7d:79:f6:46:98:79: ee:9d:93:db:42:6e:56:d2:26:e5:70:8e:ce:9e:bb:c9:07:a0: a4:c9:01:76:01:82:03:12:92:7d:46:c1:29:f4:93:62:3b:f5: 48:38:65:24:85:5c:78:de:a2:f2:62:df:ba:a8:78:e3:e0:49: 2b:29:03:62:58:2b:00:ab:c9:82:84:c1:4f:2a:0c:41:3c:78: 52:38:76:50:cf:c7:aa:75:25:0a:a3:d2:ba:1c:b5:db:24:f5: 3d:ea:6e:f0:01:46:9d:6e:9e:ba:e6:36:f8:66:65:e7:31:19: 88:24:7e:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEI4NjExMC8GA1UEBRMoQTVDOTg3MDI0RDBBOEVBQzA5NjQwOUZEOTlFQzMyRUM5 MDQ3MEJBMzAeFw0yNTA1MDUwNjM4NDZaFw0yNTA1MTIwNjM4NDZaMBgxFjAUBgNV BAMTDTY4MTg1Y2Y2LWQ4ZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBsKdCGFYPhNndtUdNPuOUFZVCWpOltbCOenpMN2JTwuGN3K63ME5FTeDWMYoS 1ExstmVLCJqhsjyCV+jn2GjRYSvvRKse90YsuoUCF+WDrXuYI5p5kR++ovRkWvGc toUAS06bG1sRf+V3e8rCDXIZHseOGoEJTCUEFR+EAwOl/xQ7ojAlXt7IUE9sea0D A/pdQldswdOGlB9iHV61ABWOBjn7VuSN9eeu94eIH7v+1SQ/tlKLsc7EXWiqb5Zy q62aNR7G6S1/EANG44h0n4VTbFHanWYEgCWJPDnMEqZFW+nNAMkx6dQLGVCNe7oc u32R7A9OeQA8zDbs21/rwDifAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK0HIMoi0 1Bz0+PthMFUR5fdwrLgwHwYDVR0jBBgwFoAUpcmHAk0KjqwJZAn9mewy7JBHC6Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0Qjg2Lzg5MzMxNDhBRjdF MzExRUY4QURBOEE0MUM0RjlBRTAyL3BjbUhBazBLanF3SlpBbjltZXd5N0pCSEM2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGNtSEFrMEtqcXdKWkFuOW1ld3k3SkJIQzZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 Qjg2Lzg5MzMxNDhBRjdFMzExRUY4QURBOEE0MUM0RjlBRTAyL3BjbUhBazBLanF3 SlpBbjltZXd5N0pCSEM2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEDO0Y/ApoXkovuNLsg/LVavwCGlv29HkP0pwKU4aeCPdVDJ0hionlea QQG4sx2GlAFxlb3zADRVLh+xcbf1NVNn/PpSJvMtXRP4Obhh1gKWVEfL4s/buPSG 5WSvoKJeXS7QRuaLS/2JNyYR3dkC7NMVXbzuSUyJmkj0NjO5EK1XqcYssbMZdxC6 m3159kaYee6dk9tCblbSJuVwjs6eu8kHoKTJAXYBggMSkn1GwSn0k2I79Ug4ZSSF XHjeovJi37qoeOPgSSspA2JYKwCryYKEwU8qDEE8eFI4dlDPx6p1JQqj0roctdsk 9T3qbvABRp1unrrmNvhmZecxGYgkftA= -----END CERTIFICATE-----Generated at Tue May 6 01:33:14 2025 by rpki-client